v2

package
v0.16.0 Latest Latest
Warning

This package is not in the latest version of its module.

 Go to latest Published: Mar 11, 2022 License: Apache-2.0 Imports: 7 Imported by: 0

Documentation

Index

Constants

This section is empty.

Variables

This section is empty.

Functions

This section is empty.

Types

type FolderPolicy 

type FolderPolicy struct {
	pulumi.CustomResourceState

	// Immutable. The resource name of the Policy. Must be one of the following forms, where constraint_name is the name of the constraint which this Policy configures: * `projects/{project_number}/policies/{constraint_name}` * `folders/{folder_id}/policies/{constraint_name}` * `organizations/{organization_id}/policies/{constraint_name}` For example, "projects/123/policies/compute.disableSerialPortAccess". Note: `projects/{project_id}/policies/{constraint_name}` is also an acceptable name for API requests, but responses will return the name using the equivalent project number.
	Name pulumi.StringOutput `pulumi:"name"`
	// Basic information about the Organization Policy.
	Spec GoogleCloudOrgpolicyV2PolicySpecResponseOutput `pulumi:"spec"`
}

Creates a Policy. Returns a `google.rpc.Status` with `google.rpc.Code.NOT_FOUND` if the constraint does not exist. Returns a `google.rpc.Status` with `google.rpc.Code.ALREADY_EXISTS` if the policy already exists on the given Cloud resource. Auto-naming is currently not supported for this resource.

func GetFolderPolicy 

func GetFolderPolicy(ctx *pulumi.Context,
	name string, id pulumi.IDInput, state *FolderPolicyState, opts ...pulumi.ResourceOption) (*FolderPolicy, error)

GetFolderPolicy gets an existing FolderPolicy resource's state with the given name, ID, and optional state properties that are used to uniquely qualify the lookup (nil if not required).

func NewFolderPolicy 

func NewFolderPolicy(ctx *pulumi.Context,
	name string, args *FolderPolicyArgs, opts ...pulumi.ResourceOption) (*FolderPolicy, error)

NewFolderPolicy registers a new resource with the given unique name, arguments, and options.

func (*FolderPolicy) ElementType 

func (*FolderPolicy) ElementType() reflect.Type

func (*FolderPolicy) ToFolderPolicyOutput 

func (i *FolderPolicy) ToFolderPolicyOutput() FolderPolicyOutput

func (*FolderPolicy) ToFolderPolicyOutputWithContext 

func (i *FolderPolicy) ToFolderPolicyOutputWithContext(ctx context.Context) FolderPolicyOutput

type FolderPolicyArgs 

type FolderPolicyArgs struct {
	FolderId pulumi.StringInput
	// Immutable. The resource name of the Policy. Must be one of the following forms, where constraint_name is the name of the constraint which this Policy configures: * `projects/{project_number}/policies/{constraint_name}` * `folders/{folder_id}/policies/{constraint_name}` * `organizations/{organization_id}/policies/{constraint_name}` For example, "projects/123/policies/compute.disableSerialPortAccess". Note: `projects/{project_id}/policies/{constraint_name}` is also an acceptable name for API requests, but responses will return the name using the equivalent project number.
	Name pulumi.StringPtrInput
	// Basic information about the Organization Policy.
	Spec GoogleCloudOrgpolicyV2PolicySpecPtrInput
}

The set of arguments for constructing a FolderPolicy resource.

func (FolderPolicyArgs) ElementType 

func (FolderPolicyArgs) ElementType() reflect.Type

type FolderPolicyInput 

type FolderPolicyInput interface {
	pulumi.Input

	ToFolderPolicyOutput() FolderPolicyOutput
	ToFolderPolicyOutputWithContext(ctx context.Context) FolderPolicyOutput
}

type FolderPolicyOutput 

type FolderPolicyOutput struct{ *pulumi.OutputState }

func (FolderPolicyOutput) ElementType 

func (FolderPolicyOutput) ElementType() reflect.Type

func (FolderPolicyOutput) ToFolderPolicyOutput 

func (o FolderPolicyOutput) ToFolderPolicyOutput() FolderPolicyOutput

func (FolderPolicyOutput) ToFolderPolicyOutputWithContext 

func (o FolderPolicyOutput) ToFolderPolicyOutputWithContext(ctx context.Context) FolderPolicyOutput

type FolderPolicyState 

type FolderPolicyState struct {
}

func (FolderPolicyState) ElementType 

func (FolderPolicyState) ElementType() reflect.Type

type GoogleCloudOrgpolicyV2PolicySpec 

type GoogleCloudOrgpolicyV2PolicySpec struct {
	// An opaque tag indicating the current version of the `Policy`, used for concurrency control. This field is ignored if used in a `CreatePolicy` request. When the `Policy` is returned from either a `GetPolicy` or a `ListPolicies` request, this `etag` indicates the version of the current `Policy` to use when executing a read-modify-write loop. When the `Policy` is returned from a `GetEffectivePolicy` request, the `etag` will be unset.
	Etag *string `pulumi:"etag"`
	// Determines the inheritance behavior for this `Policy`. If `inherit_from_parent` is true, PolicyRules set higher up in the hierarchy (up to the closest root) are inherited and present in the effective policy. If it is false, then no rules are inherited, and this Policy becomes the new root for evaluation. This field can be set only for Policies which configure list constraints.
	InheritFromParent *bool `pulumi:"inheritFromParent"`
	// Ignores policies set above this resource and restores the `constraint_default` enforcement behavior of the specific `Constraint` at this resource. This field can be set in policies for either list or boolean constraints. If set, `rules` must be empty and `inherit_from_parent` must be set to false.
	Reset *bool `pulumi:"reset"`
	// Up to 10 PolicyRules are allowed. In Policies for boolean constraints, the following requirements apply: - There must be one and only one PolicyRule where condition is unset. - BooleanPolicyRules with conditions must set `enforced` to the opposite of the PolicyRule without a condition. - During policy evaluation, PolicyRules with conditions that are true for a target resource take precedence.
	Rules []GoogleCloudOrgpolicyV2PolicySpecPolicyRule `pulumi:"rules"`
}

Defines a Cloud Organization `PolicySpec` which is used to specify `Constraints` for configurations of Cloud Platform resources.

type GoogleCloudOrgpolicyV2PolicySpecArgs 

type GoogleCloudOrgpolicyV2PolicySpecArgs struct {
	// An opaque tag indicating the current version of the `Policy`, used for concurrency control. This field is ignored if used in a `CreatePolicy` request. When the `Policy` is returned from either a `GetPolicy` or a `ListPolicies` request, this `etag` indicates the version of the current `Policy` to use when executing a read-modify-write loop. When the `Policy` is returned from a `GetEffectivePolicy` request, the `etag` will be unset.
	Etag pulumi.StringPtrInput `pulumi:"etag"`
	// Determines the inheritance behavior for this `Policy`. If `inherit_from_parent` is true, PolicyRules set higher up in the hierarchy (up to the closest root) are inherited and present in the effective policy. If it is false, then no rules are inherited, and this Policy becomes the new root for evaluation. This field can be set only for Policies which configure list constraints.
	InheritFromParent pulumi.BoolPtrInput `pulumi:"inheritFromParent"`
	// Ignores policies set above this resource and restores the `constraint_default` enforcement behavior of the specific `Constraint` at this resource. This field can be set in policies for either list or boolean constraints. If set, `rules` must be empty and `inherit_from_parent` must be set to false.
	Reset pulumi.BoolPtrInput `pulumi:"reset"`
	// Up to 10 PolicyRules are allowed. In Policies for boolean constraints, the following requirements apply: - There must be one and only one PolicyRule where condition is unset. - BooleanPolicyRules with conditions must set `enforced` to the opposite of the PolicyRule without a condition. - During policy evaluation, PolicyRules with conditions that are true for a target resource take precedence.
	Rules GoogleCloudOrgpolicyV2PolicySpecPolicyRuleArrayInput `pulumi:"rules"`
}

Defines a Cloud Organization `PolicySpec` which is used to specify `Constraints` for configurations of Cloud Platform resources.

func (GoogleCloudOrgpolicyV2PolicySpecArgs) ElementType 

func (GoogleCloudOrgpolicyV2PolicySpecArgs) ElementType() reflect.Type

func (GoogleCloudOrgpolicyV2PolicySpecArgs) ToGoogleCloudOrgpolicyV2PolicySpecOutput 

func (i GoogleCloudOrgpolicyV2PolicySpecArgs) ToGoogleCloudOrgpolicyV2PolicySpecOutput() GoogleCloudOrgpolicyV2PolicySpecOutput

func (GoogleCloudOrgpolicyV2PolicySpecArgs) ToGoogleCloudOrgpolicyV2PolicySpecOutputWithContext 

func (i GoogleCloudOrgpolicyV2PolicySpecArgs) ToGoogleCloudOrgpolicyV2PolicySpecOutputWithContext(ctx context.Context) GoogleCloudOrgpolicyV2PolicySpecOutput

func (GoogleCloudOrgpolicyV2PolicySpecArgs) ToGoogleCloudOrgpolicyV2PolicySpecPtrOutput 

func (i GoogleCloudOrgpolicyV2PolicySpecArgs) ToGoogleCloudOrgpolicyV2PolicySpecPtrOutput() GoogleCloudOrgpolicyV2PolicySpecPtrOutput

func (GoogleCloudOrgpolicyV2PolicySpecArgs) ToGoogleCloudOrgpolicyV2PolicySpecPtrOutputWithContext 

func (i GoogleCloudOrgpolicyV2PolicySpecArgs) ToGoogleCloudOrgpolicyV2PolicySpecPtrOutputWithContext(ctx context.Context) GoogleCloudOrgpolicyV2PolicySpecPtrOutput

type GoogleCloudOrgpolicyV2PolicySpecInput 

type GoogleCloudOrgpolicyV2PolicySpecInput interface {
	pulumi.Input

	ToGoogleCloudOrgpolicyV2PolicySpecOutput() GoogleCloudOrgpolicyV2PolicySpecOutput
	ToGoogleCloudOrgpolicyV2PolicySpecOutputWithContext(context.Context) GoogleCloudOrgpolicyV2PolicySpecOutput
}

GoogleCloudOrgpolicyV2PolicySpecInput is an input type that accepts GoogleCloudOrgpolicyV2PolicySpecArgs and GoogleCloudOrgpolicyV2PolicySpecOutput values. You can construct a concrete instance of `GoogleCloudOrgpolicyV2PolicySpecInput` via: 

GoogleCloudOrgpolicyV2PolicySpecArgs{...}

type GoogleCloudOrgpolicyV2PolicySpecOutput 

type GoogleCloudOrgpolicyV2PolicySpecOutput struct{ *pulumi.OutputState }

Defines a Cloud Organization `PolicySpec` which is used to specify `Constraints` for configurations of Cloud Platform resources.

func (GoogleCloudOrgpolicyV2PolicySpecOutput) ElementType 

func (GoogleCloudOrgpolicyV2PolicySpecOutput) ElementType() reflect.Type

func (GoogleCloudOrgpolicyV2PolicySpecOutput) Etag 

func (o GoogleCloudOrgpolicyV2PolicySpecOutput) Etag() pulumi.StringPtrOutput

An opaque tag indicating the current version of the `Policy`, used for concurrency control. This field is ignored if used in a `CreatePolicy` request. When the `Policy` is returned from either a `GetPolicy` or a `ListPolicies` request, this `etag` indicates the version of the current `Policy` to use when executing a read-modify-write loop. When the `Policy` is returned from a `GetEffectivePolicy` request, the `etag` will be unset.

func (GoogleCloudOrgpolicyV2PolicySpecOutput) InheritFromParent 

func (o GoogleCloudOrgpolicyV2PolicySpecOutput) InheritFromParent() pulumi.BoolPtrOutput

Determines the inheritance behavior for this `Policy`. If `inherit_from_parent` is true, PolicyRules set higher up in the hierarchy (up to the closest root) are inherited and present in the effective policy. If it is false, then no rules are inherited, and this Policy becomes the new root for evaluation. This field can be set only for Policies which configure list constraints.

func (GoogleCloudOrgpolicyV2PolicySpecOutput) Reset 

func (o GoogleCloudOrgpolicyV2PolicySpecOutput) Reset() pulumi.BoolPtrOutput

Ignores policies set above this resource and restores the `constraint_default` enforcement behavior of the specific `Constraint` at this resource. This field can be set in policies for either list or boolean constraints. If set, `rules` must be empty and `inherit_from_parent` must be set to false.

func (GoogleCloudOrgpolicyV2PolicySpecOutput) Rules 

func (o GoogleCloudOrgpolicyV2PolicySpecOutput) Rules() GoogleCloudOrgpolicyV2PolicySpecPolicyRuleArrayOutput

Up to 10 PolicyRules are allowed. In Policies for boolean constraints, the following requirements apply: - There must be one and only one PolicyRule where condition is unset. - BooleanPolicyRules with conditions must set `enforced` to the opposite of the PolicyRule without a condition. - During policy evaluation, PolicyRules with conditions that are true for a target resource take precedence.

func (GoogleCloudOrgpolicyV2PolicySpecOutput) ToGoogleCloudOrgpolicyV2PolicySpecOutput 

func (o GoogleCloudOrgpolicyV2PolicySpecOutput) ToGoogleCloudOrgpolicyV2PolicySpecOutput() GoogleCloudOrgpolicyV2PolicySpecOutput

func (GoogleCloudOrgpolicyV2PolicySpecOutput) ToGoogleCloudOrgpolicyV2PolicySpecOutputWithContext 

func (o GoogleCloudOrgpolicyV2PolicySpecOutput) ToGoogleCloudOrgpolicyV2PolicySpecOutputWithContext(ctx context.Context) GoogleCloudOrgpolicyV2PolicySpecOutput

func (GoogleCloudOrgpolicyV2PolicySpecOutput) ToGoogleCloudOrgpolicyV2PolicySpecPtrOutput 

func (o GoogleCloudOrgpolicyV2PolicySpecOutput) ToGoogleCloudOrgpolicyV2PolicySpecPtrOutput() GoogleCloudOrgpolicyV2PolicySpecPtrOutput

func (GoogleCloudOrgpolicyV2PolicySpecOutput) ToGoogleCloudOrgpolicyV2PolicySpecPtrOutputWithContext 

func (o GoogleCloudOrgpolicyV2PolicySpecOutput) ToGoogleCloudOrgpolicyV2PolicySpecPtrOutputWithContext(ctx context.Context) GoogleCloudOrgpolicyV2PolicySpecPtrOutput

type GoogleCloudOrgpolicyV2PolicySpecPolicyRule 

type GoogleCloudOrgpolicyV2PolicySpecPolicyRule struct {
	// Setting this to true means that all values are allowed. This field can be set only in Policies for list constraints.
	AllowAll *bool `pulumi:"allowAll"`
	// A condition which determines whether this rule is used in the evaluation of the policy. When set, the `expression` field in the `Expr' must include from 1 to 10 subexpressions, joined by the "||" or "&&" operators. Each subexpression must be of the form "resource.matchTag('/tag_key_short_name, 'tag_value_short_name')". or "resource.matchTagId('tagKeys/key_id', 'tagValues/value_id')". where key_name and value_name are the resource names for Label Keys and Values. These names are available from the Tag Manager Service. An example expression is: "resource.matchTag('123456789/environment, 'prod')". or "resource.matchTagId('tagKeys/123', 'tagValues/456')".
	Condition *GoogleTypeExpr `pulumi:"condition"`
	// Setting this to true means that all values are denied. This field can be set only in Policies for list constraints.
	DenyAll *bool `pulumi:"denyAll"`
	// If `true`, then the `Policy` is enforced. If `false`, then any configuration is acceptable. This field can be set only in Policies for boolean constraints.
	Enforce *bool `pulumi:"enforce"`
	// List of values to be used for this PolicyRule. This field can be set only in Policies for list constraints.
	Values *GoogleCloudOrgpolicyV2PolicySpecPolicyRuleStringValues `pulumi:"values"`
}

A rule used to express this policy.

type GoogleCloudOrgpolicyV2PolicySpecPolicyRuleArgs 

type GoogleCloudOrgpolicyV2PolicySpecPolicyRuleArgs struct {
	// Setting this to true means that all values are allowed. This field can be set only in Policies for list constraints.
	AllowAll pulumi.BoolPtrInput `pulumi:"allowAll"`
	// A condition which determines whether this rule is used in the evaluation of the policy. When set, the `expression` field in the `Expr' must include from 1 to 10 subexpressions, joined by the "||" or "&&" operators. Each subexpression must be of the form "resource.matchTag('/tag_key_short_name, 'tag_value_short_name')". or "resource.matchTagId('tagKeys/key_id', 'tagValues/value_id')". where key_name and value_name are the resource names for Label Keys and Values. These names are available from the Tag Manager Service. An example expression is: "resource.matchTag('123456789/environment, 'prod')". or "resource.matchTagId('tagKeys/123', 'tagValues/456')".
	Condition GoogleTypeExprPtrInput `pulumi:"condition"`
	// Setting this to true means that all values are denied. This field can be set only in Policies for list constraints.
	DenyAll pulumi.BoolPtrInput `pulumi:"denyAll"`
	// If `true`, then the `Policy` is enforced. If `false`, then any configuration is acceptable. This field can be set only in Policies for boolean constraints.
	Enforce pulumi.BoolPtrInput `pulumi:"enforce"`
	// List of values to be used for this PolicyRule. This field can be set only in Policies for list constraints.
	Values GoogleCloudOrgpolicyV2PolicySpecPolicyRuleStringValuesPtrInput `pulumi:"values"`
}

A rule used to express this policy.

func (GoogleCloudOrgpolicyV2PolicySpecPolicyRuleArgs) ElementType 

func (GoogleCloudOrgpolicyV2PolicySpecPolicyRuleArgs) ElementType() reflect.Type

func (GoogleCloudOrgpolicyV2PolicySpecPolicyRuleArgs) ToGoogleCloudOrgpolicyV2PolicySpecPolicyRuleOutput 

func (i GoogleCloudOrgpolicyV2PolicySpecPolicyRuleArgs) ToGoogleCloudOrgpolicyV2PolicySpecPolicyRuleOutput() GoogleCloudOrgpolicyV2PolicySpecPolicyRuleOutput

func (GoogleCloudOrgpolicyV2PolicySpecPolicyRuleArgs) ToGoogleCloudOrgpolicyV2PolicySpecPolicyRuleOutputWithContext 

func (i GoogleCloudOrgpolicyV2PolicySpecPolicyRuleArgs) ToGoogleCloudOrgpolicyV2PolicySpecPolicyRuleOutputWithContext(ctx context.Context) GoogleCloudOrgpolicyV2PolicySpecPolicyRuleOutput

type GoogleCloudOrgpolicyV2PolicySpecPolicyRuleArray 

type GoogleCloudOrgpolicyV2PolicySpecPolicyRuleArray []GoogleCloudOrgpolicyV2PolicySpecPolicyRuleInput

func (GoogleCloudOrgpolicyV2PolicySpecPolicyRuleArray) ElementType 

func (GoogleCloudOrgpolicyV2PolicySpecPolicyRuleArray) ElementType() reflect.Type

func (GoogleCloudOrgpolicyV2PolicySpecPolicyRuleArray) ToGoogleCloudOrgpolicyV2PolicySpecPolicyRuleArrayOutput 

func (i GoogleCloudOrgpolicyV2PolicySpecPolicyRuleArray) ToGoogleCloudOrgpolicyV2PolicySpecPolicyRuleArrayOutput() GoogleCloudOrgpolicyV2PolicySpecPolicyRuleArrayOutput

func (GoogleCloudOrgpolicyV2PolicySpecPolicyRuleArray) ToGoogleCloudOrgpolicyV2PolicySpecPolicyRuleArrayOutputWithContext 

func (i GoogleCloudOrgpolicyV2PolicySpecPolicyRuleArray) ToGoogleCloudOrgpolicyV2PolicySpecPolicyRuleArrayOutputWithContext(ctx context.Context) GoogleCloudOrgpolicyV2PolicySpecPolicyRuleArrayOutput

type GoogleCloudOrgpolicyV2PolicySpecPolicyRuleArrayInput 

type GoogleCloudOrgpolicyV2PolicySpecPolicyRuleArrayInput interface {
	pulumi.Input

	ToGoogleCloudOrgpolicyV2PolicySpecPolicyRuleArrayOutput() GoogleCloudOrgpolicyV2PolicySpecPolicyRuleArrayOutput
	ToGoogleCloudOrgpolicyV2PolicySpecPolicyRuleArrayOutputWithContext(context.Context) GoogleCloudOrgpolicyV2PolicySpecPolicyRuleArrayOutput
}

GoogleCloudOrgpolicyV2PolicySpecPolicyRuleArrayInput is an input type that accepts GoogleCloudOrgpolicyV2PolicySpecPolicyRuleArray and GoogleCloudOrgpolicyV2PolicySpecPolicyRuleArrayOutput values. You can construct a concrete instance of `GoogleCloudOrgpolicyV2PolicySpecPolicyRuleArrayInput` via: 

GoogleCloudOrgpolicyV2PolicySpecPolicyRuleArray{ GoogleCloudOrgpolicyV2PolicySpecPolicyRuleArgs{...} }

type GoogleCloudOrgpolicyV2PolicySpecPolicyRuleArrayOutput 

type GoogleCloudOrgpolicyV2PolicySpecPolicyRuleArrayOutput struct{ *pulumi.OutputState }

func (GoogleCloudOrgpolicyV2PolicySpecPolicyRuleArrayOutput) ElementType 

func (GoogleCloudOrgpolicyV2PolicySpecPolicyRuleArrayOutput) ElementType() reflect.Type

func (GoogleCloudOrgpolicyV2PolicySpecPolicyRuleArrayOutput) Index 

func (o GoogleCloudOrgpolicyV2PolicySpecPolicyRuleArrayOutput) Index(i pulumi.IntInput) GoogleCloudOrgpolicyV2PolicySpecPolicyRuleOutput

func (GoogleCloudOrgpolicyV2PolicySpecPolicyRuleArrayOutput) ToGoogleCloudOrgpolicyV2PolicySpecPolicyRuleArrayOutput 

func (o GoogleCloudOrgpolicyV2PolicySpecPolicyRuleArrayOutput) ToGoogleCloudOrgpolicyV2PolicySpecPolicyRuleArrayOutput() GoogleCloudOrgpolicyV2PolicySpecPolicyRuleArrayOutput

func (GoogleCloudOrgpolicyV2PolicySpecPolicyRuleArrayOutput) ToGoogleCloudOrgpolicyV2PolicySpecPolicyRuleArrayOutputWithContext 

func (o GoogleCloudOrgpolicyV2PolicySpecPolicyRuleArrayOutput) ToGoogleCloudOrgpolicyV2PolicySpecPolicyRuleArrayOutputWithContext(ctx context.Context) GoogleCloudOrgpolicyV2PolicySpecPolicyRuleArrayOutput

type GoogleCloudOrgpolicyV2PolicySpecPolicyRuleInput 

type GoogleCloudOrgpolicyV2PolicySpecPolicyRuleInput interface {
	pulumi.Input

	ToGoogleCloudOrgpolicyV2PolicySpecPolicyRuleOutput() GoogleCloudOrgpolicyV2PolicySpecPolicyRuleOutput
	ToGoogleCloudOrgpolicyV2PolicySpecPolicyRuleOutputWithContext(context.Context) GoogleCloudOrgpolicyV2PolicySpecPolicyRuleOutput
}

GoogleCloudOrgpolicyV2PolicySpecPolicyRuleInput is an input type that accepts GoogleCloudOrgpolicyV2PolicySpecPolicyRuleArgs and GoogleCloudOrgpolicyV2PolicySpecPolicyRuleOutput values. You can construct a concrete instance of `GoogleCloudOrgpolicyV2PolicySpecPolicyRuleInput` via: 

GoogleCloudOrgpolicyV2PolicySpecPolicyRuleArgs{...}

type GoogleCloudOrgpolicyV2PolicySpecPolicyRuleOutput 

type GoogleCloudOrgpolicyV2PolicySpecPolicyRuleOutput struct{ *pulumi.OutputState }

A rule used to express this policy.

func (GoogleCloudOrgpolicyV2PolicySpecPolicyRuleOutput) AllowAll 

func (o GoogleCloudOrgpolicyV2PolicySpecPolicyRuleOutput) AllowAll() pulumi.BoolPtrOutput

Setting this to true means that all values are allowed. This field can be set only in Policies for list constraints.

func (GoogleCloudOrgpolicyV2PolicySpecPolicyRuleOutput) Condition 

func (o GoogleCloudOrgpolicyV2PolicySpecPolicyRuleOutput) Condition() GoogleTypeExprPtrOutput

A condition which determines whether this rule is used in the evaluation of the policy. When set, the `expression` field in the `Expr' must include from 1 to 10 subexpressions, joined by the "||" or "&&" operators. Each subexpression must be of the form "resource.matchTag('/tag_key_short_name, 'tag_value_short_name')". or "resource.matchTagId('tagKeys/key_id', 'tagValues/value_id')". where key_name and value_name are the resource names for Label Keys and Values. These names are available from the Tag Manager Service. An example expression is: "resource.matchTag('123456789/environment, 'prod')". or "resource.matchTagId('tagKeys/123', 'tagValues/456')".

func (GoogleCloudOrgpolicyV2PolicySpecPolicyRuleOutput) DenyAll 

func (o GoogleCloudOrgpolicyV2PolicySpecPolicyRuleOutput) DenyAll() pulumi.BoolPtrOutput

Setting this to true means that all values are denied. This field can be set only in Policies for list constraints.

func (GoogleCloudOrgpolicyV2PolicySpecPolicyRuleOutput) ElementType 

func (GoogleCloudOrgpolicyV2PolicySpecPolicyRuleOutput) ElementType() reflect.Type

func (GoogleCloudOrgpolicyV2PolicySpecPolicyRuleOutput) Enforce 

func (o GoogleCloudOrgpolicyV2PolicySpecPolicyRuleOutput) Enforce() pulumi.BoolPtrOutput

If `true`, then the `Policy` is enforced. If `false`, then any configuration is acceptable. This field can be set only in Policies for boolean constraints.

func (GoogleCloudOrgpolicyV2PolicySpecPolicyRuleOutput) ToGoogleCloudOrgpolicyV2PolicySpecPolicyRuleOutput 

func (o GoogleCloudOrgpolicyV2PolicySpecPolicyRuleOutput) ToGoogleCloudOrgpolicyV2PolicySpecPolicyRuleOutput() GoogleCloudOrgpolicyV2PolicySpecPolicyRuleOutput

func (GoogleCloudOrgpolicyV2PolicySpecPolicyRuleOutput) ToGoogleCloudOrgpolicyV2PolicySpecPolicyRuleOutputWithContext 

func (o GoogleCloudOrgpolicyV2PolicySpecPolicyRuleOutput) ToGoogleCloudOrgpolicyV2PolicySpecPolicyRuleOutputWithContext(ctx context.Context) GoogleCloudOrgpolicyV2PolicySpecPolicyRuleOutput

func (GoogleCloudOrgpolicyV2PolicySpecPolicyRuleOutput) Values 

func (o GoogleCloudOrgpolicyV2PolicySpecPolicyRuleOutput) Values() GoogleCloudOrgpolicyV2PolicySpecPolicyRuleStringValuesPtrOutput

List of values to be used for this PolicyRule. This field can be set only in Policies for list constraints.

type GoogleCloudOrgpolicyV2PolicySpecPolicyRuleResponse 

type GoogleCloudOrgpolicyV2PolicySpecPolicyRuleResponse struct {
	// Setting this to true means that all values are allowed. This field can be set only in Policies for list constraints.
	AllowAll bool `pulumi:"allowAll"`
	// A condition which determines whether this rule is used in the evaluation of the policy. When set, the `expression` field in the `Expr' must include from 1 to 10 subexpressions, joined by the "||" or "&&" operators. Each subexpression must be of the form "resource.matchTag('/tag_key_short_name, 'tag_value_short_name')". or "resource.matchTagId('tagKeys/key_id', 'tagValues/value_id')". where key_name and value_name are the resource names for Label Keys and Values. These names are available from the Tag Manager Service. An example expression is: "resource.matchTag('123456789/environment, 'prod')". or "resource.matchTagId('tagKeys/123', 'tagValues/456')".
	Condition GoogleTypeExprResponse `pulumi:"condition"`
	// Setting this to true means that all values are denied. This field can be set only in Policies for list constraints.
	DenyAll bool `pulumi:"denyAll"`
	// If `true`, then the `Policy` is enforced. If `false`, then any configuration is acceptable. This field can be set only in Policies for boolean constraints.
	Enforce bool `pulumi:"enforce"`
	// List of values to be used for this PolicyRule. This field can be set only in Policies for list constraints.
	Values GoogleCloudOrgpolicyV2PolicySpecPolicyRuleStringValuesResponse `pulumi:"values"`
}

A rule used to express this policy.

type GoogleCloudOrgpolicyV2PolicySpecPolicyRuleResponseArrayOutput 

type GoogleCloudOrgpolicyV2PolicySpecPolicyRuleResponseArrayOutput struct{ *pulumi.OutputState }

func (GoogleCloudOrgpolicyV2PolicySpecPolicyRuleResponseArrayOutput) ElementType 

func (GoogleCloudOrgpolicyV2PolicySpecPolicyRuleResponseArrayOutput) ElementType() reflect.Type

func (GoogleCloudOrgpolicyV2PolicySpecPolicyRuleResponseArrayOutput) Index 

func (o GoogleCloudOrgpolicyV2PolicySpecPolicyRuleResponseArrayOutput) Index(i pulumi.IntInput) GoogleCloudOrgpolicyV2PolicySpecPolicyRuleResponseOutput

func (GoogleCloudOrgpolicyV2PolicySpecPolicyRuleResponseArrayOutput) ToGoogleCloudOrgpolicyV2PolicySpecPolicyRuleResponseArrayOutput 

func (o GoogleCloudOrgpolicyV2PolicySpecPolicyRuleResponseArrayOutput) ToGoogleCloudOrgpolicyV2PolicySpecPolicyRuleResponseArrayOutput() GoogleCloudOrgpolicyV2PolicySpecPolicyRuleResponseArrayOutput

func (GoogleCloudOrgpolicyV2PolicySpecPolicyRuleResponseArrayOutput) ToGoogleCloudOrgpolicyV2PolicySpecPolicyRuleResponseArrayOutputWithContext 

func (o GoogleCloudOrgpolicyV2PolicySpecPolicyRuleResponseArrayOutput) ToGoogleCloudOrgpolicyV2PolicySpecPolicyRuleResponseArrayOutputWithContext(ctx context.Context) GoogleCloudOrgpolicyV2PolicySpecPolicyRuleResponseArrayOutput

type GoogleCloudOrgpolicyV2PolicySpecPolicyRuleResponseOutput 

type GoogleCloudOrgpolicyV2PolicySpecPolicyRuleResponseOutput struct{ *pulumi.OutputState }

A rule used to express this policy.

func (GoogleCloudOrgpolicyV2PolicySpecPolicyRuleResponseOutput) AllowAll 

func (o GoogleCloudOrgpolicyV2PolicySpecPolicyRuleResponseOutput) AllowAll() pulumi.BoolOutput

Setting this to true means that all values are allowed. This field can be set only in Policies for list constraints.

func (GoogleCloudOrgpolicyV2PolicySpecPolicyRuleResponseOutput) Condition 

func (o GoogleCloudOrgpolicyV2PolicySpecPolicyRuleResponseOutput) Condition() GoogleTypeExprResponseOutput

A condition which determines whether this rule is used in the evaluation of the policy. When set, the `expression` field in the `Expr' must include from 1 to 10 subexpressions, joined by the "||" or "&&" operators. Each subexpression must be of the form "resource.matchTag('/tag_key_short_name, 'tag_value_short_name')". or "resource.matchTagId('tagKeys/key_id', 'tagValues/value_id')". where key_name and value_name are the resource names for Label Keys and Values. These names are available from the Tag Manager Service. An example expression is: "resource.matchTag('123456789/environment, 'prod')". or "resource.matchTagId('tagKeys/123', 'tagValues/456')".

func (GoogleCloudOrgpolicyV2PolicySpecPolicyRuleResponseOutput) DenyAll 

func (o GoogleCloudOrgpolicyV2PolicySpecPolicyRuleResponseOutput) DenyAll() pulumi.BoolOutput

Setting this to true means that all values are denied. This field can be set only in Policies for list constraints.

func (GoogleCloudOrgpolicyV2PolicySpecPolicyRuleResponseOutput) ElementType 

func (GoogleCloudOrgpolicyV2PolicySpecPolicyRuleResponseOutput) ElementType() reflect.Type

func (GoogleCloudOrgpolicyV2PolicySpecPolicyRuleResponseOutput) Enforce 

func (o GoogleCloudOrgpolicyV2PolicySpecPolicyRuleResponseOutput) Enforce() pulumi.BoolOutput

If `true`, then the `Policy` is enforced. If `false`, then any configuration is acceptable. This field can be set only in Policies for boolean constraints.

func (GoogleCloudOrgpolicyV2PolicySpecPolicyRuleResponseOutput) ToGoogleCloudOrgpolicyV2PolicySpecPolicyRuleResponseOutput 

func (o GoogleCloudOrgpolicyV2PolicySpecPolicyRuleResponseOutput) ToGoogleCloudOrgpolicyV2PolicySpecPolicyRuleResponseOutput() GoogleCloudOrgpolicyV2PolicySpecPolicyRuleResponseOutput

func (GoogleCloudOrgpolicyV2PolicySpecPolicyRuleResponseOutput) ToGoogleCloudOrgpolicyV2PolicySpecPolicyRuleResponseOutputWithContext 

func (o GoogleCloudOrgpolicyV2PolicySpecPolicyRuleResponseOutput) ToGoogleCloudOrgpolicyV2PolicySpecPolicyRuleResponseOutputWithContext(ctx context.Context) GoogleCloudOrgpolicyV2PolicySpecPolicyRuleResponseOutput

func (GoogleCloudOrgpolicyV2PolicySpecPolicyRuleResponseOutput) Values 

func (o GoogleCloudOrgpolicyV2PolicySpecPolicyRuleResponseOutput) Values() GoogleCloudOrgpolicyV2PolicySpecPolicyRuleStringValuesResponseOutput

List of values to be used for this PolicyRule. This field can be set only in Policies for list constraints.

type GoogleCloudOrgpolicyV2PolicySpecPolicyRuleStringValues 

type GoogleCloudOrgpolicyV2PolicySpecPolicyRuleStringValues struct {
	// List of values allowed at this resource.
	AllowedValues []string `pulumi:"allowedValues"`
	// List of values denied at this resource.
	DeniedValues []string `pulumi:"deniedValues"`
}

A message that holds specific allowed and denied values. This message can define specific values and subtrees of Cloud Resource Manager resource hierarchy (`Organizations`, `Folders`, `Projects`) that are allowed or denied. This is achieved by using the `under:` and optional `is:` prefixes. The `under:` prefix is used to denote resource subtree values. The `is:` prefix is used to denote specific values, and is required only if the value contains a ":". Values prefixed with "is:" are treated the same as values with no prefix. Ancestry subtrees must be in one of the following formats: - "projects/", e.g. "projects/tokyo-rain-123" - "folders/", e.g. "folders/1234" - "organizations/", e.g. "organizations/1234" The `supports_under` field of the associated `Constraint` defines whether ancestry prefixes can be used.

type GoogleCloudOrgpolicyV2PolicySpecPolicyRuleStringValuesArgs 

type GoogleCloudOrgpolicyV2PolicySpecPolicyRuleStringValuesArgs struct {
	// List of values allowed at this resource.
	AllowedValues pulumi.StringArrayInput `pulumi:"allowedValues"`
	// List of values denied at this resource.
	DeniedValues pulumi.StringArrayInput `pulumi:"deniedValues"`
}

A message that holds specific allowed and denied values. This message can define specific values and subtrees of Cloud Resource Manager resource hierarchy (`Organizations`, `Folders`, `Projects`) that are allowed or denied. This is achieved by using the `under:` and optional `is:` prefixes. The `under:` prefix is used to denote resource subtree values. The `is:` prefix is used to denote specific values, and is required only if the value contains a ":". Values prefixed with "is:" are treated the same as values with no prefix. Ancestry subtrees must be in one of the following formats: - "projects/", e.g. "projects/tokyo-rain-123" - "folders/", e.g. "folders/1234" - "organizations/", e.g. "organizations/1234" The `supports_under` field of the associated `Constraint` defines whether ancestry prefixes can be used.

func (GoogleCloudOrgpolicyV2PolicySpecPolicyRuleStringValuesArgs) ElementType 

func (GoogleCloudOrgpolicyV2PolicySpecPolicyRuleStringValuesArgs) ElementType() reflect.Type

func (GoogleCloudOrgpolicyV2PolicySpecPolicyRuleStringValuesArgs) ToGoogleCloudOrgpolicyV2PolicySpecPolicyRuleStringValuesOutput 

func (i GoogleCloudOrgpolicyV2PolicySpecPolicyRuleStringValuesArgs) ToGoogleCloudOrgpolicyV2PolicySpecPolicyRuleStringValuesOutput() GoogleCloudOrgpolicyV2PolicySpecPolicyRuleStringValuesOutput

func (GoogleCloudOrgpolicyV2PolicySpecPolicyRuleStringValuesArgs) ToGoogleCloudOrgpolicyV2PolicySpecPolicyRuleStringValuesOutputWithContext 

func (i GoogleCloudOrgpolicyV2PolicySpecPolicyRuleStringValuesArgs) ToGoogleCloudOrgpolicyV2PolicySpecPolicyRuleStringValuesOutputWithContext(ctx context.Context) GoogleCloudOrgpolicyV2PolicySpecPolicyRuleStringValuesOutput

func (GoogleCloudOrgpolicyV2PolicySpecPolicyRuleStringValuesArgs) ToGoogleCloudOrgpolicyV2PolicySpecPolicyRuleStringValuesPtrOutput 

func (i GoogleCloudOrgpolicyV2PolicySpecPolicyRuleStringValuesArgs) ToGoogleCloudOrgpolicyV2PolicySpecPolicyRuleStringValuesPtrOutput() GoogleCloudOrgpolicyV2PolicySpecPolicyRuleStringValuesPtrOutput

func (GoogleCloudOrgpolicyV2PolicySpecPolicyRuleStringValuesArgs) ToGoogleCloudOrgpolicyV2PolicySpecPolicyRuleStringValuesPtrOutputWithContext 

func (i GoogleCloudOrgpolicyV2PolicySpecPolicyRuleStringValuesArgs) ToGoogleCloudOrgpolicyV2PolicySpecPolicyRuleStringValuesPtrOutputWithContext(ctx context.Context) GoogleCloudOrgpolicyV2PolicySpecPolicyRuleStringValuesPtrOutput

type GoogleCloudOrgpolicyV2PolicySpecPolicyRuleStringValuesInput 

type GoogleCloudOrgpolicyV2PolicySpecPolicyRuleStringValuesInput interface {
	pulumi.Input

	ToGoogleCloudOrgpolicyV2PolicySpecPolicyRuleStringValuesOutput() GoogleCloudOrgpolicyV2PolicySpecPolicyRuleStringValuesOutput
	ToGoogleCloudOrgpolicyV2PolicySpecPolicyRuleStringValuesOutputWithContext(context.Context) GoogleCloudOrgpolicyV2PolicySpecPolicyRuleStringValuesOutput
}

GoogleCloudOrgpolicyV2PolicySpecPolicyRuleStringValuesInput is an input type that accepts GoogleCloudOrgpolicyV2PolicySpecPolicyRuleStringValuesArgs and GoogleCloudOrgpolicyV2PolicySpecPolicyRuleStringValuesOutput values. You can construct a concrete instance of `GoogleCloudOrgpolicyV2PolicySpecPolicyRuleStringValuesInput` via: 

GoogleCloudOrgpolicyV2PolicySpecPolicyRuleStringValuesArgs{...}

type GoogleCloudOrgpolicyV2PolicySpecPolicyRuleStringValuesOutput 

type GoogleCloudOrgpolicyV2PolicySpecPolicyRuleStringValuesOutput struct{ *pulumi.OutputState }

A message that holds specific allowed and denied values. This message can define specific values and subtrees of Cloud Resource Manager resource hierarchy (`Organizations`, `Folders`, `Projects`) that are allowed or denied. This is achieved by using the `under:` and optional `is:` prefixes. The `under:` prefix is used to denote resource subtree values. The `is:` prefix is used to denote specific values, and is required only if the value contains a ":". Values prefixed with "is:" are treated the same as values with no prefix. Ancestry subtrees must be in one of the following formats: - "projects/", e.g. "projects/tokyo-rain-123" - "folders/", e.g. "folders/1234" - "organizations/", e.g. "organizations/1234" The `supports_under` field of the associated `Constraint` defines whether ancestry prefixes can be used.

func (GoogleCloudOrgpolicyV2PolicySpecPolicyRuleStringValuesOutput) AllowedValues 

func (o GoogleCloudOrgpolicyV2PolicySpecPolicyRuleStringValuesOutput) AllowedValues() pulumi.StringArrayOutput

List of values allowed at this resource.

func (GoogleCloudOrgpolicyV2PolicySpecPolicyRuleStringValuesOutput) DeniedValues 

func (o GoogleCloudOrgpolicyV2PolicySpecPolicyRuleStringValuesOutput) DeniedValues() pulumi.StringArrayOutput

List of values denied at this resource.

func (GoogleCloudOrgpolicyV2PolicySpecPolicyRuleStringValuesOutput) ElementType 

func (GoogleCloudOrgpolicyV2PolicySpecPolicyRuleStringValuesOutput) ElementType() reflect.Type

func (GoogleCloudOrgpolicyV2PolicySpecPolicyRuleStringValuesOutput) ToGoogleCloudOrgpolicyV2PolicySpecPolicyRuleStringValuesOutput 

func (o GoogleCloudOrgpolicyV2PolicySpecPolicyRuleStringValuesOutput) ToGoogleCloudOrgpolicyV2PolicySpecPolicyRuleStringValuesOutput() GoogleCloudOrgpolicyV2PolicySpecPolicyRuleStringValuesOutput

func (GoogleCloudOrgpolicyV2PolicySpecPolicyRuleStringValuesOutput) ToGoogleCloudOrgpolicyV2PolicySpecPolicyRuleStringValuesOutputWithContext 

func (o GoogleCloudOrgpolicyV2PolicySpecPolicyRuleStringValuesOutput) ToGoogleCloudOrgpolicyV2PolicySpecPolicyRuleStringValuesOutputWithContext(ctx context.Context) GoogleCloudOrgpolicyV2PolicySpecPolicyRuleStringValuesOutput

func (GoogleCloudOrgpolicyV2PolicySpecPolicyRuleStringValuesOutput) ToGoogleCloudOrgpolicyV2PolicySpecPolicyRuleStringValuesPtrOutput 

func (o GoogleCloudOrgpolicyV2PolicySpecPolicyRuleStringValuesOutput) ToGoogleCloudOrgpolicyV2PolicySpecPolicyRuleStringValuesPtrOutput() GoogleCloudOrgpolicyV2PolicySpecPolicyRuleStringValuesPtrOutput

func (GoogleCloudOrgpolicyV2PolicySpecPolicyRuleStringValuesOutput) ToGoogleCloudOrgpolicyV2PolicySpecPolicyRuleStringValuesPtrOutputWithContext 

func (o GoogleCloudOrgpolicyV2PolicySpecPolicyRuleStringValuesOutput) ToGoogleCloudOrgpolicyV2PolicySpecPolicyRuleStringValuesPtrOutputWithContext(ctx context.Context) GoogleCloudOrgpolicyV2PolicySpecPolicyRuleStringValuesPtrOutput

type GoogleCloudOrgpolicyV2PolicySpecPolicyRuleStringValuesPtrInput 

type GoogleCloudOrgpolicyV2PolicySpecPolicyRuleStringValuesPtrInput interface {
	pulumi.Input

	ToGoogleCloudOrgpolicyV2PolicySpecPolicyRuleStringValuesPtrOutput() GoogleCloudOrgpolicyV2PolicySpecPolicyRuleStringValuesPtrOutput
	ToGoogleCloudOrgpolicyV2PolicySpecPolicyRuleStringValuesPtrOutputWithContext(context.Context) GoogleCloudOrgpolicyV2PolicySpecPolicyRuleStringValuesPtrOutput
}

GoogleCloudOrgpolicyV2PolicySpecPolicyRuleStringValuesPtrInput is an input type that accepts GoogleCloudOrgpolicyV2PolicySpecPolicyRuleStringValuesArgs, GoogleCloudOrgpolicyV2PolicySpecPolicyRuleStringValuesPtr and GoogleCloudOrgpolicyV2PolicySpecPolicyRuleStringValuesPtrOutput values. You can construct a concrete instance of `GoogleCloudOrgpolicyV2PolicySpecPolicyRuleStringValuesPtrInput` via: 

        GoogleCloudOrgpolicyV2PolicySpecPolicyRuleStringValuesArgs{...}

or:

        nil

func GoogleCloudOrgpolicyV2PolicySpecPolicyRuleStringValuesPtr 

func GoogleCloudOrgpolicyV2PolicySpecPolicyRuleStringValuesPtr(v *GoogleCloudOrgpolicyV2PolicySpecPolicyRuleStringValuesArgs) GoogleCloudOrgpolicyV2PolicySpecPolicyRuleStringValuesPtrInput

type GoogleCloudOrgpolicyV2PolicySpecPolicyRuleStringValuesPtrOutput 

type GoogleCloudOrgpolicyV2PolicySpecPolicyRuleStringValuesPtrOutput struct{ *pulumi.OutputState }

func (GoogleCloudOrgpolicyV2PolicySpecPolicyRuleStringValuesPtrOutput) AllowedValues 

func (o GoogleCloudOrgpolicyV2PolicySpecPolicyRuleStringValuesPtrOutput) AllowedValues() pulumi.StringArrayOutput

List of values allowed at this resource.

func (GoogleCloudOrgpolicyV2PolicySpecPolicyRuleStringValuesPtrOutput) DeniedValues 

func (o GoogleCloudOrgpolicyV2PolicySpecPolicyRuleStringValuesPtrOutput) DeniedValues() pulumi.StringArrayOutput

List of values denied at this resource.

func (GoogleCloudOrgpolicyV2PolicySpecPolicyRuleStringValuesPtrOutput) Elem 

func (o GoogleCloudOrgpolicyV2PolicySpecPolicyRuleStringValuesPtrOutput) Elem() GoogleCloudOrgpolicyV2PolicySpecPolicyRuleStringValuesOutput

func (GoogleCloudOrgpolicyV2PolicySpecPolicyRuleStringValuesPtrOutput) ElementType 

func (GoogleCloudOrgpolicyV2PolicySpecPolicyRuleStringValuesPtrOutput) ElementType() reflect.Type

func (GoogleCloudOrgpolicyV2PolicySpecPolicyRuleStringValuesPtrOutput) ToGoogleCloudOrgpolicyV2PolicySpecPolicyRuleStringValuesPtrOutput 

func (o GoogleCloudOrgpolicyV2PolicySpecPolicyRuleStringValuesPtrOutput) ToGoogleCloudOrgpolicyV2PolicySpecPolicyRuleStringValuesPtrOutput() GoogleCloudOrgpolicyV2PolicySpecPolicyRuleStringValuesPtrOutput

func (GoogleCloudOrgpolicyV2PolicySpecPolicyRuleStringValuesPtrOutput) ToGoogleCloudOrgpolicyV2PolicySpecPolicyRuleStringValuesPtrOutputWithContext 

func (o GoogleCloudOrgpolicyV2PolicySpecPolicyRuleStringValuesPtrOutput) ToGoogleCloudOrgpolicyV2PolicySpecPolicyRuleStringValuesPtrOutputWithContext(ctx context.Context) GoogleCloudOrgpolicyV2PolicySpecPolicyRuleStringValuesPtrOutput

type GoogleCloudOrgpolicyV2PolicySpecPolicyRuleStringValuesResponse 

type GoogleCloudOrgpolicyV2PolicySpecPolicyRuleStringValuesResponse struct {
	// List of values allowed at this resource.
	AllowedValues []string `pulumi:"allowedValues"`
	// List of values denied at this resource.
	DeniedValues []string `pulumi:"deniedValues"`
}

A message that holds specific allowed and denied values. This message can define specific values and subtrees of Cloud Resource Manager resource hierarchy (`Organizations`, `Folders`, `Projects`) that are allowed or denied. This is achieved by using the `under:` and optional `is:` prefixes. The `under:` prefix is used to denote resource subtree values. The `is:` prefix is used to denote specific values, and is required only if the value contains a ":". Values prefixed with "is:" are treated the same as values with no prefix. Ancestry subtrees must be in one of the following formats: - "projects/", e.g. "projects/tokyo-rain-123" - "folders/", e.g. "folders/1234" - "organizations/", e.g. "organizations/1234" The `supports_under` field of the associated `Constraint` defines whether ancestry prefixes can be used.

type GoogleCloudOrgpolicyV2PolicySpecPolicyRuleStringValuesResponseOutput 

type GoogleCloudOrgpolicyV2PolicySpecPolicyRuleStringValuesResponseOutput struct{ *pulumi.OutputState }

A message that holds specific allowed and denied values. This message can define specific values and subtrees of Cloud Resource Manager resource hierarchy (`Organizations`, `Folders`, `Projects`) that are allowed or denied. This is achieved by using the `under:` and optional `is:` prefixes. The `under:` prefix is used to denote resource subtree values. The `is:` prefix is used to denote specific values, and is required only if the value contains a ":". Values prefixed with "is:" are treated the same as values with no prefix. Ancestry subtrees must be in one of the following formats: - "projects/", e.g. "projects/tokyo-rain-123" - "folders/", e.g. "folders/1234" - "organizations/", e.g. "organizations/1234" The `supports_under` field of the associated `Constraint` defines whether ancestry prefixes can be used.

func (GoogleCloudOrgpolicyV2PolicySpecPolicyRuleStringValuesResponseOutput) AllowedValues 

func (o GoogleCloudOrgpolicyV2PolicySpecPolicyRuleStringValuesResponseOutput) AllowedValues() pulumi.StringArrayOutput

List of values allowed at this resource.

func (GoogleCloudOrgpolicyV2PolicySpecPolicyRuleStringValuesResponseOutput) DeniedValues 

func (o GoogleCloudOrgpolicyV2PolicySpecPolicyRuleStringValuesResponseOutput) DeniedValues() pulumi.StringArrayOutput

List of values denied at this resource.

func (GoogleCloudOrgpolicyV2PolicySpecPolicyRuleStringValuesResponseOutput) ElementType 

func (GoogleCloudOrgpolicyV2PolicySpecPolicyRuleStringValuesResponseOutput) ElementType() reflect.Type

func (GoogleCloudOrgpolicyV2PolicySpecPolicyRuleStringValuesResponseOutput) ToGoogleCloudOrgpolicyV2PolicySpecPolicyRuleStringValuesResponseOutput 

func (o GoogleCloudOrgpolicyV2PolicySpecPolicyRuleStringValuesResponseOutput) ToGoogleCloudOrgpolicyV2PolicySpecPolicyRuleStringValuesResponseOutput() GoogleCloudOrgpolicyV2PolicySpecPolicyRuleStringValuesResponseOutput

func (GoogleCloudOrgpolicyV2PolicySpecPolicyRuleStringValuesResponseOutput) ToGoogleCloudOrgpolicyV2PolicySpecPolicyRuleStringValuesResponseOutputWithContext 

func (o GoogleCloudOrgpolicyV2PolicySpecPolicyRuleStringValuesResponseOutput) ToGoogleCloudOrgpolicyV2PolicySpecPolicyRuleStringValuesResponseOutputWithContext(ctx context.Context) GoogleCloudOrgpolicyV2PolicySpecPolicyRuleStringValuesResponseOutput

type GoogleCloudOrgpolicyV2PolicySpecPtrInput 

type GoogleCloudOrgpolicyV2PolicySpecPtrInput interface {
	pulumi.Input

	ToGoogleCloudOrgpolicyV2PolicySpecPtrOutput() GoogleCloudOrgpolicyV2PolicySpecPtrOutput
	ToGoogleCloudOrgpolicyV2PolicySpecPtrOutputWithContext(context.Context) GoogleCloudOrgpolicyV2PolicySpecPtrOutput
}

GoogleCloudOrgpolicyV2PolicySpecPtrInput is an input type that accepts GoogleCloudOrgpolicyV2PolicySpecArgs, GoogleCloudOrgpolicyV2PolicySpecPtr and GoogleCloudOrgpolicyV2PolicySpecPtrOutput values. You can construct a concrete instance of `GoogleCloudOrgpolicyV2PolicySpecPtrInput` via: 

        GoogleCloudOrgpolicyV2PolicySpecArgs{...}

or:

        nil

func GoogleCloudOrgpolicyV2PolicySpecPtr 

func GoogleCloudOrgpolicyV2PolicySpecPtr(v *GoogleCloudOrgpolicyV2PolicySpecArgs) GoogleCloudOrgpolicyV2PolicySpecPtrInput

type GoogleCloudOrgpolicyV2PolicySpecPtrOutput 

type GoogleCloudOrgpolicyV2PolicySpecPtrOutput struct{ *pulumi.OutputState }

func (GoogleCloudOrgpolicyV2PolicySpecPtrOutput) Elem 

func (o GoogleCloudOrgpolicyV2PolicySpecPtrOutput) Elem() GoogleCloudOrgpolicyV2PolicySpecOutput

func (GoogleCloudOrgpolicyV2PolicySpecPtrOutput) ElementType 

func (GoogleCloudOrgpolicyV2PolicySpecPtrOutput) ElementType() reflect.Type

func (GoogleCloudOrgpolicyV2PolicySpecPtrOutput) Etag 

func (o GoogleCloudOrgpolicyV2PolicySpecPtrOutput) Etag() pulumi.StringPtrOutput

An opaque tag indicating the current version of the `Policy`, used for concurrency control. This field is ignored if used in a `CreatePolicy` request. When the `Policy` is returned from either a `GetPolicy` or a `ListPolicies` request, this `etag` indicates the version of the current `Policy` to use when executing a read-modify-write loop. When the `Policy` is returned from a `GetEffectivePolicy` request, the `etag` will be unset.

func (GoogleCloudOrgpolicyV2PolicySpecPtrOutput) InheritFromParent 

func (o GoogleCloudOrgpolicyV2PolicySpecPtrOutput) InheritFromParent() pulumi.BoolPtrOutput

Determines the inheritance behavior for this `Policy`. If `inherit_from_parent` is true, PolicyRules set higher up in the hierarchy (up to the closest root) are inherited and present in the effective policy. If it is false, then no rules are inherited, and this Policy becomes the new root for evaluation. This field can be set only for Policies which configure list constraints.

func (GoogleCloudOrgpolicyV2PolicySpecPtrOutput) Reset 

func (o GoogleCloudOrgpolicyV2PolicySpecPtrOutput) Reset() pulumi.BoolPtrOutput

Ignores policies set above this resource and restores the `constraint_default` enforcement behavior of the specific `Constraint` at this resource. This field can be set in policies for either list or boolean constraints. If set, `rules` must be empty and `inherit_from_parent` must be set to false.

func (GoogleCloudOrgpolicyV2PolicySpecPtrOutput) Rules 

func (o GoogleCloudOrgpolicyV2PolicySpecPtrOutput) Rules() GoogleCloudOrgpolicyV2PolicySpecPolicyRuleArrayOutput

Up to 10 PolicyRules are allowed. In Policies for boolean constraints, the following requirements apply: - There must be one and only one PolicyRule where condition is unset. - BooleanPolicyRules with conditions must set `enforced` to the opposite of the PolicyRule without a condition. - During policy evaluation, PolicyRules with conditions that are true for a target resource take precedence.

func (GoogleCloudOrgpolicyV2PolicySpecPtrOutput) ToGoogleCloudOrgpolicyV2PolicySpecPtrOutput 

func (o GoogleCloudOrgpolicyV2PolicySpecPtrOutput) ToGoogleCloudOrgpolicyV2PolicySpecPtrOutput() GoogleCloudOrgpolicyV2PolicySpecPtrOutput

func (GoogleCloudOrgpolicyV2PolicySpecPtrOutput) ToGoogleCloudOrgpolicyV2PolicySpecPtrOutputWithContext 

func (o GoogleCloudOrgpolicyV2PolicySpecPtrOutput) ToGoogleCloudOrgpolicyV2PolicySpecPtrOutputWithContext(ctx context.Context) GoogleCloudOrgpolicyV2PolicySpecPtrOutput

type GoogleCloudOrgpolicyV2PolicySpecResponse 

type GoogleCloudOrgpolicyV2PolicySpecResponse struct {
	// An opaque tag indicating the current version of the `Policy`, used for concurrency control. This field is ignored if used in a `CreatePolicy` request. When the `Policy` is returned from either a `GetPolicy` or a `ListPolicies` request, this `etag` indicates the version of the current `Policy` to use when executing a read-modify-write loop. When the `Policy` is returned from a `GetEffectivePolicy` request, the `etag` will be unset.
	Etag string `pulumi:"etag"`
	// Determines the inheritance behavior for this `Policy`. If `inherit_from_parent` is true, PolicyRules set higher up in the hierarchy (up to the closest root) are inherited and present in the effective policy. If it is false, then no rules are inherited, and this Policy becomes the new root for evaluation. This field can be set only for Policies which configure list constraints.
	InheritFromParent bool `pulumi:"inheritFromParent"`
	// Ignores policies set above this resource and restores the `constraint_default` enforcement behavior of the specific `Constraint` at this resource. This field can be set in policies for either list or boolean constraints. If set, `rules` must be empty and `inherit_from_parent` must be set to false.
	Reset bool `pulumi:"reset"`
	// Up to 10 PolicyRules are allowed. In Policies for boolean constraints, the following requirements apply: - There must be one and only one PolicyRule where condition is unset. - BooleanPolicyRules with conditions must set `enforced` to the opposite of the PolicyRule without a condition. - During policy evaluation, PolicyRules with conditions that are true for a target resource take precedence.
	Rules []GoogleCloudOrgpolicyV2PolicySpecPolicyRuleResponse `pulumi:"rules"`
	// The time stamp this was previously updated. This represents the last time a call to `CreatePolicy` or `UpdatePolicy` was made for that `Policy`.
	UpdateTime string `pulumi:"updateTime"`
}

Defines a Cloud Organization `PolicySpec` which is used to specify `Constraints` for configurations of Cloud Platform resources.

type GoogleCloudOrgpolicyV2PolicySpecResponseOutput 

type GoogleCloudOrgpolicyV2PolicySpecResponseOutput struct{ *pulumi.OutputState }

Defines a Cloud Organization `PolicySpec` which is used to specify `Constraints` for configurations of Cloud Platform resources.

func (GoogleCloudOrgpolicyV2PolicySpecResponseOutput) ElementType 

func (GoogleCloudOrgpolicyV2PolicySpecResponseOutput) ElementType() reflect.Type

func (GoogleCloudOrgpolicyV2PolicySpecResponseOutput) Etag 

func (o GoogleCloudOrgpolicyV2PolicySpecResponseOutput) Etag() pulumi.StringOutput

An opaque tag indicating the current version of the `Policy`, used for concurrency control. This field is ignored if used in a `CreatePolicy` request. When the `Policy` is returned from either a `GetPolicy` or a `ListPolicies` request, this `etag` indicates the version of the current `Policy` to use when executing a read-modify-write loop. When the `Policy` is returned from a `GetEffectivePolicy` request, the `etag` will be unset.

func (GoogleCloudOrgpolicyV2PolicySpecResponseOutput) InheritFromParent 

func (o GoogleCloudOrgpolicyV2PolicySpecResponseOutput) InheritFromParent() pulumi.BoolOutput

Determines the inheritance behavior for this `Policy`. If `inherit_from_parent` is true, PolicyRules set higher up in the hierarchy (up to the closest root) are inherited and present in the effective policy. If it is false, then no rules are inherited, and this Policy becomes the new root for evaluation. This field can be set only for Policies which configure list constraints.

func (GoogleCloudOrgpolicyV2PolicySpecResponseOutput) Reset 

func (o GoogleCloudOrgpolicyV2PolicySpecResponseOutput) Reset() pulumi.BoolOutput

Ignores policies set above this resource and restores the `constraint_default` enforcement behavior of the specific `Constraint` at this resource. This field can be set in policies for either list or boolean constraints. If set, `rules` must be empty and `inherit_from_parent` must be set to false.

func (GoogleCloudOrgpolicyV2PolicySpecResponseOutput) Rules 

func (o GoogleCloudOrgpolicyV2PolicySpecResponseOutput) Rules() GoogleCloudOrgpolicyV2PolicySpecPolicyRuleResponseArrayOutput

Up to 10 PolicyRules are allowed. In Policies for boolean constraints, the following requirements apply: - There must be one and only one PolicyRule where condition is unset. - BooleanPolicyRules with conditions must set `enforced` to the opposite of the PolicyRule without a condition. - During policy evaluation, PolicyRules with conditions that are true for a target resource take precedence.

func (GoogleCloudOrgpolicyV2PolicySpecResponseOutput) ToGoogleCloudOrgpolicyV2PolicySpecResponseOutput 

func (o GoogleCloudOrgpolicyV2PolicySpecResponseOutput) ToGoogleCloudOrgpolicyV2PolicySpecResponseOutput() GoogleCloudOrgpolicyV2PolicySpecResponseOutput

func (GoogleCloudOrgpolicyV2PolicySpecResponseOutput) ToGoogleCloudOrgpolicyV2PolicySpecResponseOutputWithContext 

func (o GoogleCloudOrgpolicyV2PolicySpecResponseOutput) ToGoogleCloudOrgpolicyV2PolicySpecResponseOutputWithContext(ctx context.Context) GoogleCloudOrgpolicyV2PolicySpecResponseOutput

func (GoogleCloudOrgpolicyV2PolicySpecResponseOutput) UpdateTime 

func (o GoogleCloudOrgpolicyV2PolicySpecResponseOutput) UpdateTime() pulumi.StringOutput

The time stamp this was previously updated. This represents the last time a call to `CreatePolicy` or `UpdatePolicy` was made for that `Policy`.

type GoogleTypeExpr 

type GoogleTypeExpr struct {
	// Optional. Description of the expression. This is a longer text which describes the expression, e.g. when hovered over it in a UI.
	Description *string `pulumi:"description"`
	// Textual representation of an expression in Common Expression Language syntax.
	Expression *string `pulumi:"expression"`
	// Optional. String indicating the location of the expression for error reporting, e.g. a file name and a position in the file.
	Location *string `pulumi:"location"`
	// Optional. Title for the expression, i.e. a short string describing its purpose. This can be used e.g. in UIs which allow to enter the expression.
	Title *string `pulumi:"title"`
}

Represents a textual expression in the Common Expression Language (CEL) syntax. CEL is a C-like expression language. The syntax and semantics of CEL are documented at https://github.com/google/cel-spec. Example (Comparison): title: "Summary size limit" description: "Determines if a summary is less than 100 chars" expression: "document.summary.size() < 100" Example (Equality): title: "Requestor is owner" description: "Determines if requestor is the document owner" expression: "document.owner == request.auth.claims.email" Example (Logic): title: "Public documents" description: "Determine whether the document should be publicly visible" expression: "document.type != 'private' && document.type != 'internal'" Example (Data Manipulation): title: "Notification string" description: "Create a notification string with a timestamp." expression: "'New message received at ' + string(document.create_time)" The exact variables and functions that may be referenced within an expression are determined by the service that evaluates it. See the service documentation for additional information.

type GoogleTypeExprArgs 

type GoogleTypeExprArgs struct {
	// Optional. Description of the expression. This is a longer text which describes the expression, e.g. when hovered over it in a UI.
	Description pulumi.StringPtrInput `pulumi:"description"`
	// Textual representation of an expression in Common Expression Language syntax.
	Expression pulumi.StringPtrInput `pulumi:"expression"`
	// Optional. String indicating the location of the expression for error reporting, e.g. a file name and a position in the file.
	Location pulumi.StringPtrInput `pulumi:"location"`
	// Optional. Title for the expression, i.e. a short string describing its purpose. This can be used e.g. in UIs which allow to enter the expression.
	Title pulumi.StringPtrInput `pulumi:"title"`
}

Represents a textual expression in the Common Expression Language (CEL) syntax. CEL is a C-like expression language. The syntax and semantics of CEL are documented at https://github.com/google/cel-spec. Example (Comparison): title: "Summary size limit" description: "Determines if a summary is less than 100 chars" expression: "document.summary.size() < 100" Example (Equality): title: "Requestor is owner" description: "Determines if requestor is the document owner" expression: "document.owner == request.auth.claims.email" Example (Logic): title: "Public documents" description: "Determine whether the document should be publicly visible" expression: "document.type != 'private' && document.type != 'internal'" Example (Data Manipulation): title: "Notification string" description: "Create a notification string with a timestamp." expression: "'New message received at ' + string(document.create_time)" The exact variables and functions that may be referenced within an expression are determined by the service that evaluates it. See the service documentation for additional information.

func (GoogleTypeExprArgs) ElementType 

func (GoogleTypeExprArgs) ElementType() reflect.Type

func (GoogleTypeExprArgs) ToGoogleTypeExprOutput 

func (i GoogleTypeExprArgs) ToGoogleTypeExprOutput() GoogleTypeExprOutput

func (GoogleTypeExprArgs) ToGoogleTypeExprOutputWithContext 

func (i GoogleTypeExprArgs) ToGoogleTypeExprOutputWithContext(ctx context.Context) GoogleTypeExprOutput

func (GoogleTypeExprArgs) ToGoogleTypeExprPtrOutput 

func (i GoogleTypeExprArgs) ToGoogleTypeExprPtrOutput() GoogleTypeExprPtrOutput

func (GoogleTypeExprArgs) ToGoogleTypeExprPtrOutputWithContext 

func (i GoogleTypeExprArgs) ToGoogleTypeExprPtrOutputWithContext(ctx context.Context) GoogleTypeExprPtrOutput

type GoogleTypeExprInput 

type GoogleTypeExprInput interface {
	pulumi.Input

	ToGoogleTypeExprOutput() GoogleTypeExprOutput
	ToGoogleTypeExprOutputWithContext(context.Context) GoogleTypeExprOutput
}

GoogleTypeExprInput is an input type that accepts GoogleTypeExprArgs and GoogleTypeExprOutput values. You can construct a concrete instance of `GoogleTypeExprInput` via: 

GoogleTypeExprArgs{...}

type GoogleTypeExprOutput 

type GoogleTypeExprOutput struct{ *pulumi.OutputState }

Represents a textual expression in the Common Expression Language (CEL) syntax. CEL is a C-like expression language. The syntax and semantics of CEL are documented at https://github.com/google/cel-spec. Example (Comparison): title: "Summary size limit" description: "Determines if a summary is less than 100 chars" expression: "document.summary.size() < 100" Example (Equality): title: "Requestor is owner" description: "Determines if requestor is the document owner" expression: "document.owner == request.auth.claims.email" Example (Logic): title: "Public documents" description: "Determine whether the document should be publicly visible" expression: "document.type != 'private' && document.type != 'internal'" Example (Data Manipulation): title: "Notification string" description: "Create a notification string with a timestamp." expression: "'New message received at ' + string(document.create_time)" The exact variables and functions that may be referenced within an expression are determined by the service that evaluates it. See the service documentation for additional information.

func (GoogleTypeExprOutput) Description 

func (o GoogleTypeExprOutput) Description() pulumi.StringPtrOutput

Optional. Description of the expression. This is a longer text which describes the expression, e.g. when hovered over it in a UI.

func (GoogleTypeExprOutput) ElementType 

func (GoogleTypeExprOutput) ElementType() reflect.Type

func (GoogleTypeExprOutput) Expression 

func (o GoogleTypeExprOutput) Expression() pulumi.StringPtrOutput

Textual representation of an expression in Common Expression Language syntax.

func (GoogleTypeExprOutput) Location 

func (o GoogleTypeExprOutput) Location() pulumi.StringPtrOutput

Optional. String indicating the location of the expression for error reporting, e.g. a file name and a position in the file.

func (GoogleTypeExprOutput) Title 

func (o GoogleTypeExprOutput) Title() pulumi.StringPtrOutput

Optional. Title for the expression, i.e. a short string describing its purpose. This can be used e.g. in UIs which allow to enter the expression.

func (GoogleTypeExprOutput) ToGoogleTypeExprOutput 

func (o GoogleTypeExprOutput) ToGoogleTypeExprOutput() GoogleTypeExprOutput

func (GoogleTypeExprOutput) ToGoogleTypeExprOutputWithContext 

func (o GoogleTypeExprOutput) ToGoogleTypeExprOutputWithContext(ctx context.Context) GoogleTypeExprOutput

func (GoogleTypeExprOutput) ToGoogleTypeExprPtrOutput 

func (o GoogleTypeExprOutput) ToGoogleTypeExprPtrOutput() GoogleTypeExprPtrOutput

func (GoogleTypeExprOutput) ToGoogleTypeExprPtrOutputWithContext 

func (o GoogleTypeExprOutput) ToGoogleTypeExprPtrOutputWithContext(ctx context.Context) GoogleTypeExprPtrOutput

type GoogleTypeExprPtrInput 

type GoogleTypeExprPtrInput interface {
	pulumi.Input

	ToGoogleTypeExprPtrOutput() GoogleTypeExprPtrOutput
	ToGoogleTypeExprPtrOutputWithContext(context.Context) GoogleTypeExprPtrOutput
}

GoogleTypeExprPtrInput is an input type that accepts GoogleTypeExprArgs, GoogleTypeExprPtr and GoogleTypeExprPtrOutput values. You can construct a concrete instance of `GoogleTypeExprPtrInput` via: 

        GoogleTypeExprArgs{...}

or:

        nil

func GoogleTypeExprPtr 

func GoogleTypeExprPtr(v *GoogleTypeExprArgs) GoogleTypeExprPtrInput

type GoogleTypeExprPtrOutput 

type GoogleTypeExprPtrOutput struct{ *pulumi.OutputState }

func (GoogleTypeExprPtrOutput) Description 

func (o GoogleTypeExprPtrOutput) Description() pulumi.StringPtrOutput

Optional. Description of the expression. This is a longer text which describes the expression, e.g. when hovered over it in a UI.

func (GoogleTypeExprPtrOutput) Elem 

func (o GoogleTypeExprPtrOutput) Elem() GoogleTypeExprOutput

func (GoogleTypeExprPtrOutput) ElementType 

func (GoogleTypeExprPtrOutput) ElementType() reflect.Type

func (GoogleTypeExprPtrOutput) Expression 

func (o GoogleTypeExprPtrOutput) Expression() pulumi.StringPtrOutput

Textual representation of an expression in Common Expression Language syntax.

func (GoogleTypeExprPtrOutput) Location 

func (o GoogleTypeExprPtrOutput) Location() pulumi.StringPtrOutput

Optional. String indicating the location of the expression for error reporting, e.g. a file name and a position in the file.

func (GoogleTypeExprPtrOutput) Title 

func (o GoogleTypeExprPtrOutput) Title() pulumi.StringPtrOutput

Optional. Title for the expression, i.e. a short string describing its purpose. This can be used e.g. in UIs which allow to enter the expression.

func (GoogleTypeExprPtrOutput) ToGoogleTypeExprPtrOutput 

func (o GoogleTypeExprPtrOutput) ToGoogleTypeExprPtrOutput() GoogleTypeExprPtrOutput

func (GoogleTypeExprPtrOutput) ToGoogleTypeExprPtrOutputWithContext 

func (o GoogleTypeExprPtrOutput) ToGoogleTypeExprPtrOutputWithContext(ctx context.Context) GoogleTypeExprPtrOutput

type GoogleTypeExprResponse 

type GoogleTypeExprResponse struct {
	// Optional. Description of the expression. This is a longer text which describes the expression, e.g. when hovered over it in a UI.
	Description string `pulumi:"description"`
	// Textual representation of an expression in Common Expression Language syntax.
	Expression string `pulumi:"expression"`
	// Optional. String indicating the location of the expression for error reporting, e.g. a file name and a position in the file.
	Location string `pulumi:"location"`
	// Optional. Title for the expression, i.e. a short string describing its purpose. This can be used e.g. in UIs which allow to enter the expression.
	Title string `pulumi:"title"`
}

Represents a textual expression in the Common Expression Language (CEL) syntax. CEL is a C-like expression language. The syntax and semantics of CEL are documented at https://github.com/google/cel-spec. Example (Comparison): title: "Summary size limit" description: "Determines if a summary is less than 100 chars" expression: "document.summary.size() < 100" Example (Equality): title: "Requestor is owner" description: "Determines if requestor is the document owner" expression: "document.owner == request.auth.claims.email" Example (Logic): title: "Public documents" description: "Determine whether the document should be publicly visible" expression: "document.type != 'private' && document.type != 'internal'" Example (Data Manipulation): title: "Notification string" description: "Create a notification string with a timestamp." expression: "'New message received at ' + string(document.create_time)" The exact variables and functions that may be referenced within an expression are determined by the service that evaluates it. See the service documentation for additional information.

type GoogleTypeExprResponseOutput 

type GoogleTypeExprResponseOutput struct{ *pulumi.OutputState }

Represents a textual expression in the Common Expression Language (CEL) syntax. CEL is a C-like expression language. The syntax and semantics of CEL are documented at https://github.com/google/cel-spec. Example (Comparison): title: "Summary size limit" description: "Determines if a summary is less than 100 chars" expression: "document.summary.size() < 100" Example (Equality): title: "Requestor is owner" description: "Determines if requestor is the document owner" expression: "document.owner == request.auth.claims.email" Example (Logic): title: "Public documents" description: "Determine whether the document should be publicly visible" expression: "document.type != 'private' && document.type != 'internal'" Example (Data Manipulation): title: "Notification string" description: "Create a notification string with a timestamp." expression: "'New message received at ' + string(document.create_time)" The exact variables and functions that may be referenced within an expression are determined by the service that evaluates it. See the service documentation for additional information.

func (GoogleTypeExprResponseOutput) Description 

func (o GoogleTypeExprResponseOutput) Description() pulumi.StringOutput

Optional. Description of the expression. This is a longer text which describes the expression, e.g. when hovered over it in a UI.

func (GoogleTypeExprResponseOutput) ElementType 

func (GoogleTypeExprResponseOutput) ElementType() reflect.Type

func (GoogleTypeExprResponseOutput) Expression 

func (o GoogleTypeExprResponseOutput) Expression() pulumi.StringOutput

Textual representation of an expression in Common Expression Language syntax.

func (GoogleTypeExprResponseOutput) Location 

func (o GoogleTypeExprResponseOutput) Location() pulumi.StringOutput

Optional. String indicating the location of the expression for error reporting, e.g. a file name and a position in the file.

func (GoogleTypeExprResponseOutput) Title 

func (o GoogleTypeExprResponseOutput) Title() pulumi.StringOutput

Optional. Title for the expression, i.e. a short string describing its purpose. This can be used e.g. in UIs which allow to enter the expression.

func (GoogleTypeExprResponseOutput) ToGoogleTypeExprResponseOutput 

func (o GoogleTypeExprResponseOutput) ToGoogleTypeExprResponseOutput() GoogleTypeExprResponseOutput

func (GoogleTypeExprResponseOutput) ToGoogleTypeExprResponseOutputWithContext 

func (o GoogleTypeExprResponseOutput) ToGoogleTypeExprResponseOutputWithContext(ctx context.Context) GoogleTypeExprResponseOutput

type LookupFolderPolicyArgs added in v0.4.0 

type LookupFolderPolicyArgs struct {
	FolderId string `pulumi:"folderId"`
	PolicyId string `pulumi:"policyId"`
}

type LookupFolderPolicyOutputArgs added in v0.8.0 

type LookupFolderPolicyOutputArgs struct {
	FolderId pulumi.StringInput `pulumi:"folderId"`
	PolicyId pulumi.StringInput `pulumi:"policyId"`
}

func (LookupFolderPolicyOutputArgs) ElementType added in v0.8.0 

func (LookupFolderPolicyOutputArgs) ElementType() reflect.Type

type LookupFolderPolicyResult added in v0.4.0 

type LookupFolderPolicyResult struct {
	// Immutable. The resource name of the Policy. Must be one of the following forms, where constraint_name is the name of the constraint which this Policy configures: * `projects/{project_number}/policies/{constraint_name}` * `folders/{folder_id}/policies/{constraint_name}` * `organizations/{organization_id}/policies/{constraint_name}` For example, "projects/123/policies/compute.disableSerialPortAccess". Note: `projects/{project_id}/policies/{constraint_name}` is also an acceptable name for API requests, but responses will return the name using the equivalent project number.
	Name string `pulumi:"name"`
	// Basic information about the Organization Policy.
	Spec GoogleCloudOrgpolicyV2PolicySpecResponse `pulumi:"spec"`
}

func LookupFolderPolicy added in v0.4.0 

func LookupFolderPolicy(ctx *pulumi.Context, args *LookupFolderPolicyArgs, opts ...pulumi.InvokeOption) (*LookupFolderPolicyResult, error)

Gets a `Policy` on a resource. If no `Policy` is set on the resource, NOT_FOUND is returned. The `etag` value can be used with `UpdatePolicy()` to update a `Policy` during read-modify-write.

type LookupFolderPolicyResultOutput added in v0.8.0 

type LookupFolderPolicyResultOutput struct{ *pulumi.OutputState }

func LookupFolderPolicyOutput added in v0.8.0 

func LookupFolderPolicyOutput(ctx *pulumi.Context, args LookupFolderPolicyOutputArgs, opts ...pulumi.InvokeOption) LookupFolderPolicyResultOutput

func (LookupFolderPolicyResultOutput) ElementType added in v0.8.0 

func (LookupFolderPolicyResultOutput) ElementType() reflect.Type

func (LookupFolderPolicyResultOutput) Name added in v0.8.0 

func (o LookupFolderPolicyResultOutput) Name() pulumi.StringOutput

Immutable. The resource name of the Policy. Must be one of the following forms, where constraint_name is the name of the constraint which this Policy configures: * `projects/{project_number}/policies/{constraint_name}` * `folders/{folder_id}/policies/{constraint_name}` * `organizations/{organization_id}/policies/{constraint_name}` For example, "projects/123/policies/compute.disableSerialPortAccess". Note: `projects/{project_id}/policies/{constraint_name}` is also an acceptable name for API requests, but responses will return the name using the equivalent project number.

func (LookupFolderPolicyResultOutput) Spec added in v0.8.0 

func (o LookupFolderPolicyResultOutput) Spec() GoogleCloudOrgpolicyV2PolicySpecResponseOutput

Basic information about the Organization Policy.

func (LookupFolderPolicyResultOutput) ToLookupFolderPolicyResultOutput added in v0.8.0 

func (o LookupFolderPolicyResultOutput) ToLookupFolderPolicyResultOutput() LookupFolderPolicyResultOutput

func (LookupFolderPolicyResultOutput) ToLookupFolderPolicyResultOutputWithContext added in v0.8.0 

func (o LookupFolderPolicyResultOutput) ToLookupFolderPolicyResultOutputWithContext(ctx context.Context) LookupFolderPolicyResultOutput

type LookupOrganizationPolicyArgs added in v0.4.0 

type LookupOrganizationPolicyArgs struct {
	OrganizationId string `pulumi:"organizationId"`
	PolicyId       string `pulumi:"policyId"`
}

type LookupOrganizationPolicyOutputArgs added in v0.8.0 

type LookupOrganizationPolicyOutputArgs struct {
	OrganizationId pulumi.StringInput `pulumi:"organizationId"`
	PolicyId       pulumi.StringInput `pulumi:"policyId"`
}

func (LookupOrganizationPolicyOutputArgs) ElementType added in v0.8.0 

func (LookupOrganizationPolicyOutputArgs) ElementType() reflect.Type

type LookupOrganizationPolicyResult added in v0.4.0 

type LookupOrganizationPolicyResult struct {
	// Immutable. The resource name of the Policy. Must be one of the following forms, where constraint_name is the name of the constraint which this Policy configures: * `projects/{project_number}/policies/{constraint_name}` * `folders/{folder_id}/policies/{constraint_name}` * `organizations/{organization_id}/policies/{constraint_name}` For example, "projects/123/policies/compute.disableSerialPortAccess". Note: `projects/{project_id}/policies/{constraint_name}` is also an acceptable name for API requests, but responses will return the name using the equivalent project number.
	Name string `pulumi:"name"`
	// Basic information about the Organization Policy.
	Spec GoogleCloudOrgpolicyV2PolicySpecResponse `pulumi:"spec"`
}

func LookupOrganizationPolicy added in v0.4.0 

func LookupOrganizationPolicy(ctx *pulumi.Context, args *LookupOrganizationPolicyArgs, opts ...pulumi.InvokeOption) (*LookupOrganizationPolicyResult, error)

Gets a `Policy` on a resource. If no `Policy` is set on the resource, NOT_FOUND is returned. The `etag` value can be used with `UpdatePolicy()` to update a `Policy` during read-modify-write.

type LookupOrganizationPolicyResultOutput added in v0.8.0 

type LookupOrganizationPolicyResultOutput struct{ *pulumi.OutputState }

func LookupOrganizationPolicyOutput added in v0.8.0 

func LookupOrganizationPolicyOutput(ctx *pulumi.Context, args LookupOrganizationPolicyOutputArgs, opts ...pulumi.InvokeOption) LookupOrganizationPolicyResultOutput

func (LookupOrganizationPolicyResultOutput) ElementType added in v0.8.0 

func (LookupOrganizationPolicyResultOutput) ElementType() reflect.Type

func (LookupOrganizationPolicyResultOutput) Name added in v0.8.0 

func (o LookupOrganizationPolicyResultOutput) Name() pulumi.StringOutput

Immutable. The resource name of the Policy. Must be one of the following forms, where constraint_name is the name of the constraint which this Policy configures: * `projects/{project_number}/policies/{constraint_name}` * `folders/{folder_id}/policies/{constraint_name}` * `organizations/{organization_id}/policies/{constraint_name}` For example, "projects/123/policies/compute.disableSerialPortAccess". Note: `projects/{project_id}/policies/{constraint_name}` is also an acceptable name for API requests, but responses will return the name using the equivalent project number.

func (LookupOrganizationPolicyResultOutput) Spec added in v0.8.0 

func (o LookupOrganizationPolicyResultOutput) Spec() GoogleCloudOrgpolicyV2PolicySpecResponseOutput

Basic information about the Organization Policy.

func (LookupOrganizationPolicyResultOutput) ToLookupOrganizationPolicyResultOutput added in v0.8.0 

func (o LookupOrganizationPolicyResultOutput) ToLookupOrganizationPolicyResultOutput() LookupOrganizationPolicyResultOutput

func (LookupOrganizationPolicyResultOutput) ToLookupOrganizationPolicyResultOutputWithContext added in v0.8.0 

func (o LookupOrganizationPolicyResultOutput) ToLookupOrganizationPolicyResultOutputWithContext(ctx context.Context) LookupOrganizationPolicyResultOutput

type LookupPolicyArgs added in v0.4.0 

type LookupPolicyArgs struct {
	PolicyId string  `pulumi:"policyId"`
	Project  *string `pulumi:"project"`
}

type LookupPolicyOutputArgs added in v0.8.0 

type LookupPolicyOutputArgs struct {
	PolicyId pulumi.StringInput    `pulumi:"policyId"`
	Project  pulumi.StringPtrInput `pulumi:"project"`
}

func (LookupPolicyOutputArgs) ElementType added in v0.8.0 

func (LookupPolicyOutputArgs) ElementType() reflect.Type

type LookupPolicyResult added in v0.4.0 

type LookupPolicyResult struct {
	// Immutable. The resource name of the Policy. Must be one of the following forms, where constraint_name is the name of the constraint which this Policy configures: * `projects/{project_number}/policies/{constraint_name}` * `folders/{folder_id}/policies/{constraint_name}` * `organizations/{organization_id}/policies/{constraint_name}` For example, "projects/123/policies/compute.disableSerialPortAccess". Note: `projects/{project_id}/policies/{constraint_name}` is also an acceptable name for API requests, but responses will return the name using the equivalent project number.
	Name string `pulumi:"name"`
	// Basic information about the Organization Policy.
	Spec GoogleCloudOrgpolicyV2PolicySpecResponse `pulumi:"spec"`
}

func LookupPolicy added in v0.4.0 

func LookupPolicy(ctx *pulumi.Context, args *LookupPolicyArgs, opts ...pulumi.InvokeOption) (*LookupPolicyResult, error)

Gets a `Policy` on a resource. If no `Policy` is set on the resource, NOT_FOUND is returned. The `etag` value can be used with `UpdatePolicy()` to update a `Policy` during read-modify-write.

type LookupPolicyResultOutput added in v0.8.0 

type LookupPolicyResultOutput struct{ *pulumi.OutputState }

func LookupPolicyOutput added in v0.8.0 

func LookupPolicyOutput(ctx *pulumi.Context, args LookupPolicyOutputArgs, opts ...pulumi.InvokeOption) LookupPolicyResultOutput

func (LookupPolicyResultOutput) ElementType added in v0.8.0 

func (LookupPolicyResultOutput) ElementType() reflect.Type

func (LookupPolicyResultOutput) Name added in v0.8.0 

func (o LookupPolicyResultOutput) Name() pulumi.StringOutput

Immutable. The resource name of the Policy. Must be one of the following forms, where constraint_name is the name of the constraint which this Policy configures: * `projects/{project_number}/policies/{constraint_name}` * `folders/{folder_id}/policies/{constraint_name}` * `organizations/{organization_id}/policies/{constraint_name}` For example, "projects/123/policies/compute.disableSerialPortAccess". Note: `projects/{project_id}/policies/{constraint_name}` is also an acceptable name for API requests, but responses will return the name using the equivalent project number.

func (LookupPolicyResultOutput) Spec added in v0.8.0 

func (o LookupPolicyResultOutput) Spec() GoogleCloudOrgpolicyV2PolicySpecResponseOutput

Basic information about the Organization Policy.

func (LookupPolicyResultOutput) ToLookupPolicyResultOutput added in v0.8.0 

func (o LookupPolicyResultOutput) ToLookupPolicyResultOutput() LookupPolicyResultOutput

func (LookupPolicyResultOutput) ToLookupPolicyResultOutputWithContext added in v0.8.0 

func (o LookupPolicyResultOutput) ToLookupPolicyResultOutputWithContext(ctx context.Context) LookupPolicyResultOutput

type OrganizationPolicy 

type OrganizationPolicy struct {
	pulumi.CustomResourceState

	// Immutable. The resource name of the Policy. Must be one of the following forms, where constraint_name is the name of the constraint which this Policy configures: * `projects/{project_number}/policies/{constraint_name}` * `folders/{folder_id}/policies/{constraint_name}` * `organizations/{organization_id}/policies/{constraint_name}` For example, "projects/123/policies/compute.disableSerialPortAccess". Note: `projects/{project_id}/policies/{constraint_name}` is also an acceptable name for API requests, but responses will return the name using the equivalent project number.
	Name pulumi.StringOutput `pulumi:"name"`
	// Basic information about the Organization Policy.
	Spec GoogleCloudOrgpolicyV2PolicySpecResponseOutput `pulumi:"spec"`
}

Creates a Policy. Returns a `google.rpc.Status` with `google.rpc.Code.NOT_FOUND` if the constraint does not exist. Returns a `google.rpc.Status` with `google.rpc.Code.ALREADY_EXISTS` if the policy already exists on the given Cloud resource. Auto-naming is currently not supported for this resource.

func GetOrganizationPolicy 

func GetOrganizationPolicy(ctx *pulumi.Context,
	name string, id pulumi.IDInput, state *OrganizationPolicyState, opts ...pulumi.ResourceOption) (*OrganizationPolicy, error)

GetOrganizationPolicy gets an existing OrganizationPolicy resource's state with the given name, ID, and optional state properties that are used to uniquely qualify the lookup (nil if not required).

func NewOrganizationPolicy 

func NewOrganizationPolicy(ctx *pulumi.Context,
	name string, args *OrganizationPolicyArgs, opts ...pulumi.ResourceOption) (*OrganizationPolicy, error)

NewOrganizationPolicy registers a new resource with the given unique name, arguments, and options.

func (*OrganizationPolicy) ElementType 

func (*OrganizationPolicy) ElementType() reflect.Type

func (*OrganizationPolicy) ToOrganizationPolicyOutput 

func (i *OrganizationPolicy) ToOrganizationPolicyOutput() OrganizationPolicyOutput

func (*OrganizationPolicy) ToOrganizationPolicyOutputWithContext 

func (i *OrganizationPolicy) ToOrganizationPolicyOutputWithContext(ctx context.Context) OrganizationPolicyOutput

type OrganizationPolicyArgs 

type OrganizationPolicyArgs struct {
	// Immutable. The resource name of the Policy. Must be one of the following forms, where constraint_name is the name of the constraint which this Policy configures: * `projects/{project_number}/policies/{constraint_name}` * `folders/{folder_id}/policies/{constraint_name}` * `organizations/{organization_id}/policies/{constraint_name}` For example, "projects/123/policies/compute.disableSerialPortAccess". Note: `projects/{project_id}/policies/{constraint_name}` is also an acceptable name for API requests, but responses will return the name using the equivalent project number.
	Name           pulumi.StringPtrInput
	OrganizationId pulumi.StringInput
	// Basic information about the Organization Policy.
	Spec GoogleCloudOrgpolicyV2PolicySpecPtrInput
}

The set of arguments for constructing a OrganizationPolicy resource.

func (OrganizationPolicyArgs) ElementType 

func (OrganizationPolicyArgs) ElementType() reflect.Type

type OrganizationPolicyInput 

type OrganizationPolicyInput interface {
	pulumi.Input

	ToOrganizationPolicyOutput() OrganizationPolicyOutput
	ToOrganizationPolicyOutputWithContext(ctx context.Context) OrganizationPolicyOutput
}

type OrganizationPolicyOutput 

type OrganizationPolicyOutput struct{ *pulumi.OutputState }

func (OrganizationPolicyOutput) ElementType 

func (OrganizationPolicyOutput) ElementType() reflect.Type

func (OrganizationPolicyOutput) ToOrganizationPolicyOutput 

func (o OrganizationPolicyOutput) ToOrganizationPolicyOutput() OrganizationPolicyOutput

func (OrganizationPolicyOutput) ToOrganizationPolicyOutputWithContext 

func (o OrganizationPolicyOutput) ToOrganizationPolicyOutputWithContext(ctx context.Context) OrganizationPolicyOutput

type OrganizationPolicyState 

type OrganizationPolicyState struct {
}

func (OrganizationPolicyState) ElementType 

func (OrganizationPolicyState) ElementType() reflect.Type

type Policy 

type Policy struct {
	pulumi.CustomResourceState

	// Immutable. The resource name of the Policy. Must be one of the following forms, where constraint_name is the name of the constraint which this Policy configures: * `projects/{project_number}/policies/{constraint_name}` * `folders/{folder_id}/policies/{constraint_name}` * `organizations/{organization_id}/policies/{constraint_name}` For example, "projects/123/policies/compute.disableSerialPortAccess". Note: `projects/{project_id}/policies/{constraint_name}` is also an acceptable name for API requests, but responses will return the name using the equivalent project number.
	Name pulumi.StringOutput `pulumi:"name"`
	// Basic information about the Organization Policy.
	Spec GoogleCloudOrgpolicyV2PolicySpecResponseOutput `pulumi:"spec"`
}

Creates a Policy. Returns a `google.rpc.Status` with `google.rpc.Code.NOT_FOUND` if the constraint does not exist. Returns a `google.rpc.Status` with `google.rpc.Code.ALREADY_EXISTS` if the policy already exists on the given Cloud resource.

func GetPolicy 

func GetPolicy(ctx *pulumi.Context,
	name string, id pulumi.IDInput, state *PolicyState, opts ...pulumi.ResourceOption) (*Policy, error)

GetPolicy gets an existing Policy resource's state with the given name, ID, and optional state properties that are used to uniquely qualify the lookup (nil if not required).

func NewPolicy 

func NewPolicy(ctx *pulumi.Context,
	name string, args *PolicyArgs, opts ...pulumi.ResourceOption) (*Policy, error)

NewPolicy registers a new resource with the given unique name, arguments, and options.

func (*Policy) ElementType 

func (*Policy) ElementType() reflect.Type

func (*Policy) ToPolicyOutput 

func (i *Policy) ToPolicyOutput() PolicyOutput

func (*Policy) ToPolicyOutputWithContext 

func (i *Policy) ToPolicyOutputWithContext(ctx context.Context) PolicyOutput

type PolicyArgs 

type PolicyArgs struct {
	// Immutable. The resource name of the Policy. Must be one of the following forms, where constraint_name is the name of the constraint which this Policy configures: * `projects/{project_number}/policies/{constraint_name}` * `folders/{folder_id}/policies/{constraint_name}` * `organizations/{organization_id}/policies/{constraint_name}` For example, "projects/123/policies/compute.disableSerialPortAccess". Note: `projects/{project_id}/policies/{constraint_name}` is also an acceptable name for API requests, but responses will return the name using the equivalent project number.
	Name    pulumi.StringPtrInput
	Project pulumi.StringPtrInput
	// Basic information about the Organization Policy.
	Spec GoogleCloudOrgpolicyV2PolicySpecPtrInput
}

The set of arguments for constructing a Policy resource.

func (PolicyArgs) ElementType 

func (PolicyArgs) ElementType() reflect.Type

type PolicyInput 

type PolicyInput interface {
	pulumi.Input

	ToPolicyOutput() PolicyOutput
	ToPolicyOutputWithContext(ctx context.Context) PolicyOutput
}

type PolicyOutput 

type PolicyOutput struct{ *pulumi.OutputState }

func (PolicyOutput) ElementType 

func (PolicyOutput) ElementType() reflect.Type

func (PolicyOutput) ToPolicyOutput 

func (o PolicyOutput) ToPolicyOutput() PolicyOutput

func (PolicyOutput) ToPolicyOutputWithContext 

func (o PolicyOutput) ToPolicyOutputWithContext(ctx context.Context) PolicyOutput

type PolicyState 

type PolicyState struct {
}

func (PolicyState) ElementType 

func (PolicyState) ElementType() reflect.Type

Source Files

View all Source files

Jump to

Keyboard shortcuts

? : This menu
/ : Search site
f or F : Jump to
y or Y : Canonical URL
go.dev uses cookies from Google to deliver and enhance the quality of its services and to analyze traffic. Learn more.